What is Amazon EKS?
A managed service that allows you to run Kubernetes on AWS without installing, operating, or maintaining your own Kubernetes control plane or nodes.
It provides a fully managed, certified Kubernetes-conformant control plane.
Name the AWS services integrated with Amazon EKS for scalability and security.
- Amazon ECR for container images
- Elastic Load Balancing for load distribution
- IAM for authentication
- Amazon VPC for isolation
These integrations enhance the functionality and security of applications running on EKS.
What are the two main components of an EKS cluster?
- EKS control plane
- EKS nodes
The control plane runs the Kubernetes software, while nodes are where pods are scheduled.
What does the EKS control plane consist of?
- Nodes running Kubernetes software (API server & etcd)
- Single-tenant and unique clusters
- Provisioned across multiple AZs
The control plane is fronted by an ELB Network Load Balancer.
True or false: EKS nodes must be in the same VPC as the subnets chosen when creating a cluster.
TRUE
This ensures proper communication and resource allocation within the cluster.
What are the two methods for updating self-managed node groups in a cluster?
- Migrating to a new node group
- Updating an existing self-managed node group
These methods ensure that node groups can be kept up-to-date with new AMIs.
What is the purpose of AWS Fargate in Amazon EKS?
To run pods without managing the underlying EC2 instances.
Fargate profiles must be defined before scheduling pods on Fargate.
What does the EKS Auto Mode do?
Fully automates cluster management, including provisioning infrastructure, scaling resources, managing core add-ons, and optimizing costs.
This mode is recommended for new EKS clusters.
What is the role of Vertical Pod Autoscaler in EKS?
Adjusts your pods’ CPU and memory reservations.
This helps optimize resource usage for applications.
What is the Container Storage Interface (CSI) used for in EKS?
Enables third-party storage providers to create and deploy plugins in Kubernetes.
This allows alternative storage systems without modifying core Kubernetes code.
What are the three ways to create a VPC for an EKS cluster?
- Private subnets
- Public subnets
- Public and private subnets
Each method has different implications for network traffic and accessibility.
What does the CNI plugin do in Amazon EKS?
Assigns a private IPv4/IPv6 address from VPC to each pod.
It is deployed to each EC2 node in a Daemonset.
What is the function of the AWS Load Balancer Controller in EKS?
Manages AWS Elastic Load Balancers in a Kubernetes cluster.
It provisions ALB for Ingress and NLB for LoadBalancer services.
What is the EKS Pod Identity feature?
A simplified way to manage IAM credentials for applications.
It allows associating IAM roles with Kubernetes service accounts without needing an OIDC provider.
What is the Amazon EKS Dashboard used for?
Provides a unified view of all Kubernetes resources across AWS accounts and Regions.
It helps monitor cluster health and forecasts costs.
How long is the standard support period for each Kubernetes version in EKS?
14 months
Extended support can be purchased for up to 12 additional months.
